CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-16060

Mitsubishi Electric Europe B.V. SmartRTU devices allow remote attackers to obtain sensitive information (directory listing and source code) via a direct request to the /web URI.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.062

EPSS Ranking 90.4%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

http://packetstormsecurity.com/files/164538/Mitsubishi-Electric-INEA-SmartRTU-Source-Code-Disclosure.html
https://drive.google.com/open?id=1QMHwTnBbIqrTkR0NEpnTKssYdi8vRsHH
http://packetstormsecurity.com/files/164538/Mitsubishi-Electric-INEA-SmartRTU-Source-Code-Disclosure.html
https://drive.google.com/open?id=1QMHwTnBbIqrTkR0NEpnTKssYdi8vRsHH

Products affected by CVE-2018-16060

Mitsubishielectric » Smartrtu » Version: N/A

cpe:2.3:h:mitsubishielectric:smartrtu:-
Mitsubishielectric » Smartrtu Firmware » Version: N/A

cpe:2.3:o:mitsubishielectric:smartrtu_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-16060

Products

Pricing

Contact Us